join x509: certificate has expired or is not yet valid

kubernetes kubeadm
12,566

Solution 1

The root cause of the issue is my node didn't have the correct time. after configuring NTP service node was able to join the master.

Solution 2

I had the same problem after installed a docker repository with a new certificate. When connecting from the a command line using docker I was able to push and pull the image but kubernetes generated an error 'x509: certificate has expired or is not yet valid'. When I connected to the minikube VM 'ssh minikube' and entered 'date' I noticed the clock was several hours off. When I manually set the date in the minikube VM the problem was fixed.

Share:
12,566
sfgroups
Author by

sfgroups

DevOps and Kubernets Admin

Updated on July 26, 2022

Comments

  • sfgroups
    sfgroups almost 2 years

    While joining the centos 7 node to cluster 1.9.0, kubeadm join command gives this error message.

    Failed to request cluster info, will try again: [Get https://10.10.10.10:6443/api/v1/namespaces/kube-public/configmaps/cluster-info: x509: certificate has expired or is not yet valid]

    I got this message last night, this morning when run this command it worked. I removed and trying to create the cluster this morning, again its giving same error message.

    kubeadm join --token f115fe.f0eea05182abe63a 10.10.10.10:6443 --discovery-token-ca-cert-hash sha256:48d4dc90a08ff73a0cfc63e30a313aaf1903fd51da8f9ce4cc79f95ce529b8d1

[discovery] Created cluster-info discovery client, requesting info from "https://10.10.10.10:6443"
[discovery] Requesting info from "https://10.10.10.10:6443" again to validate TLS against the pinned public key
[discovery] Failed to request cluster info, will try again: [Get https://10.10.10.10:6443/api/v1/namespaces/kube-public/configmaps/cluster-info: x509: certificate has expired or is not yet valid]
[discovery] Failed to request cluster info, will try again: [Get https://10.10.10.10:6443/api/v1/namespaces/kube-public/configmaps/cluster-info: x509: certificate has expired or is not yet valid]

    How to resolve this error message?

  • manish sehgal
    manish sehgal about 6 years
    I had different ntp source on master and worker node. Once I sync'd both master and worker to same ntp source then it worked.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

kubelet saying node "master01" not found
How to install Kubernetes cluster behind proxy with Kubeadm?
“kubectl exec” results in "error: unable to upgrade connection: pod does not exist"
kubeadm join fails with http://localhost:10248/healthz connection refused
Kubernetes calico node CrashLoopBackOff
Config not found: /etc/kubernetes/admin.conf -- After setting up kubeadm worker node
Kubernetes kube-dns pod is pending
Kubernetes cluster name change
unable to access kubernetes dashboard via token
apt-get update error related with kubeadm